Search Results | AttackerKB

548 Total Results

Displaying 281-290 of 548

Attacker Value

Unknown

CVE-2012-1169

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle before 2.2.2 has Personal information disclosure, when administrative setting users name display is set to first name only full names are shown in page breadcrumbs.

Attacker Value

Unknown

CVE-2012-1170

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle before 2.2.2 has an external enrolment plugin context check issue where capability checks are not thorough

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2012-1161

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle before 2.2.2: Course information leak via hidden courses being displayed in tag search results

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2012-1168

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle before 2.2.2 has a password and web services issue where when the user profile is updated the user password is reset if not specified.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2012-1155

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle has a database activity export permission issue where the export function of the database activity module exports all entries even those from groups the user does not belong to

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2012-1156

Disclosure Date: November 14, 2019 (last updated November 27, 2024)

Moodle before 2.2.2 has users' private files included in course backups

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2019-14379

Disclosure Date: November 12, 2019 (last updated November 08, 2023)

SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2019-18849

Disclosure Date: November 11, 2019 (last updated November 08, 2023)

In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup.

Attack Vector: Local Privileges: None User Interaction: Required

Attacker Value

Unknown

CVE-2012-0049

Disclosure Date: November 07, 2019 (last updated November 27, 2024)

OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2019-18808

Disclosure Date: November 07, 2019 (last updated November 08, 2023)

A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.

Attack Vector: Local Privileges: Low User Interaction: None

548 Total Results

Displaying 281-290 of 548

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Unknown

Quick Cookie Notification